Security alert: WSUS remote code execution vulnerability

**CVE-2025-59287 (WSUS RCE) — Active exploitation observed; patch immediately.** A critical remote code execution vulnerability in Windows Server Update Service is being actively exploited against internet-exposed WSUS servers to run SYSTEM-level PowerShell commands that enumerate host and domain information and exfiltrate it (observed to webhook.site); organizations should patch WSUS instances promptly even if not believed to be internet-exposed.